Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
File: KUJPgsfIL8VJlTLlpmUadPYpxao.mft (raw, json)
Hash identifier: HKA0qTdjPGmI4jfm6CLQIIJzHj2yq2UN31JHYitCfSs=
Subject key identifier: 62:EE:69:38:E7:AF:A0:16:35:B0:2B:71:D5:3E:CE:2C:60:0B:90:A2
Authority key identifier: 29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
Certificate issuer: /CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Certificate serial: 0197B6A0C8C216B6AFE5C70A744D2FB1F07A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
Manifest number: 098E
Signing time: Sat 28 Jun 2025 13:01:19 +0000
Manifest this update: Sat 28 Jun 2025 13:01:19 +0000
Manifest next update: Sun 29 Jun 2025 13:01:19 +0000
Files and hashes: 1: E7pOFVTH8vD5FpCiYaR8AAvSF9c.roa (hash: QknCCRzW2QumFMETOVNE4NTQsXWLabVtKWWfI6cIov4=)
2: KUJPgsfIL8VJlTLlpmUadPYpxao.crl (hash: OvZ9c96qx+qjcmjqE64V6CvozAP8UPeORDBR/c/GyTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:c8:c2:16:b6:af:e5:c7:0a:74:4d:2f:b1:f0:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Validity
Not Before: Jun 28 13:01:19 2025 GMT
Not After : Jun 29 13:01:19 2025 GMT
Subject: CN=62ee6938e7afa01635b02b71d53ece2c600b90a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6a:71:2b:3e:ce:a4:10:63:9b:f8:b8:2e:6e:
60:9b:7a:68:8a:4f:17:98:81:6e:1f:5f:8a:d4:14:
60:50:77:ab:0f:a0:c2:db:3b:b7:b4:d0:50:f6:a8:
ec:1e:ea:bf:c8:d0:ea:3a:ef:df:32:5e:d9:35:d7:
ae:1b:5c:29:e4:0a:27:71:13:49:27:15:57:d1:ad:
6e:e6:90:92:4d:bd:70:46:38:69:57:33:37:94:77:
a0:bc:c4:a7:c5:ab:92:4e:c1:01:5d:c0:57:85:66:
92:96:a5:02:d9:dc:fd:1f:2d:83:fe:61:4a:b1:40:
ed:31:0f:3a:5e:22:7d:64:41:fc:e7:73:b3:bb:08:
1d:92:8b:fc:d5:77:60:fd:e6:ea:90:b0:40:38:c8:
d5:28:49:d7:f5:77:5b:90:3f:70:92:25:3a:e5:9c:
c4:9b:ff:e2:bd:5c:c6:04:24:cc:a9:09:87:d1:9d:
98:51:e4:89:43:6d:07:fb:bc:92:6c:2c:62:bc:69:
b3:0f:b7:65:00:c1:e1:69:42:51:b9:22:c7:dd:80:
fe:20:32:40:fa:05:de:42:1b:b6:05:60:a6:9f:65:
8e:d8:5f:da:7b:0a:6e:5a:27:e8:e6:3a:36:9e:40:
6b:86:d7:77:50:70:d1:1a:a9:8e:b2:e6:2f:ac:aa:
a1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:EE:69:38:E7:AF:A0:16:35:B0:2B:71:D5:3E:CE:2C:60:0B:90:A2
X509v3 Authority Key Identifier:
keyid:29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:8f:ce:62:11:8f:a2:63:fd:eb:25:46:11:61:3f:37:ba:cf:
63:07:5c:d1:1f:df:a8:65:9c:d3:eb:ea:91:d3:7a:ea:5a:f8:
1d:91:51:23:2d:5e:76:a7:a2:f9:99:54:4f:35:fe:5b:45:71:
fc:1e:33:ab:9a:53:f8:35:cf:79:52:3d:30:4f:0a:7a:bb:c7:
f1:52:31:b5:9f:05:7f:3f:f2:f0:39:0f:31:9f:40:02:ce:4a:
3e:a1:32:ae:0e:2d:78:6a:7c:3d:1a:b1:27:68:7f:f4:70:60:
18:5e:bd:97:52:d8:99:b1:ad:3d:5b:1b:a7:54:0a:de:ea:8f:
d1:95:fd:43:23:26:db:43:fb:31:d1:69:ec:ed:17:59:38:f0:
b0:e7:24:29:4a:b4:64:17:bb:d2:00:f2:2c:67:16:fd:05:46:
cc:b2:28:cc:77:31:7d:c4:35:6c:5b:bc:74:c9:fb:85:c2:29:
cf:14:40:3d:fe:3a:df:0d:b1:9c:01:ee:f8:ab:a1:5b:8c:99:
9e:6e:11:9e:96:a0:ad:0a:62:3f:7f:32:5b:a8:7b:23:cd:76:
28:86:c1:7d:dd:ed:1d:43:fc:ff:5e:41:c4:39:cb:65:34:b0:
14:9c:15:5a:bf:76:2a:93:33:d2:a7:79:5d:92:40:68:dd:ce:
c4:b3:17:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:28:42 2025 by rpki-client